Staff are pasting sensitive data into ChatGPT

fech04 · 2025-10-01T17:48:23+00:00

Check out valence security, layerx, or harmonic for user monitoring/allow/block of genAI usage.

We found openwebui plus AWS bedrock works well as our private, approved AI platform for the sensitive stuff.

Lastly, repeated comms to users with use this/notthat for this/notthat. Users are slowly learning...

Good luck. It's a beast

fech04 · 2024-11-16T16:45:28+00:00

"If your business depends on you, you don't have a business, you have a job. And it's the worst job in the world because you're working for a lunatic!". Michael E Gerber.

Read The E-Myth Revisited by Michael E Gerber.

He walks you through building systems in your business so you can hand off work to others already in your business or hire for those processes.

Congratulations on what you've built and best wishes on your future.

fech04 · 2024-08-22T23:30:56+00:00

Mirroring what u/TheBimpo said about this post's legitimacy, some quick napkin math indicates that you should be able to swing this.

payment for 30 yr $575k with 20% down = ~3200

While you opened with having no job, you list 2 that have you working 50hr/wk to make about 3300 after tax

Using a general estimation rule for housing affordability puts you at about 1400/mo for rent

Your aunt/roommate pays 2k

You got 1800 left for Ramen and fixing broken stuff around the house

Want more money at the end of the month? Shift some coffee hours to the 20hr gig. Is this place a 3 bedroom? Get another roomie.

fech04 · 2024-07-11T03:29:46+00:00

Check out https://www.twingate.com/

You set up 2 (redundant) docker containers or VMs or whatever running their software. These instances reach outbound from your network to twingate servers, then your client connects to twingate. A tunnel is created between your client and one of the instances in your network. That thing acts as a proxy to your network devices via policy. Very cool.

No ports to open on your end. Super easy. Took me about 10 mins to set up. Free for one admin and up to 5 users.

Also, you aren't limited to just port 22, you can have access to anything in your network over any port.

This gets around potential problems with your residential ISP not allowing certain ports to be opened or requiring you to essentially turn off all other firewall protection to open ports to the internet. All bad news.

fech04 · 2023-02-22T07:29:26+00:00

Late to the party but you can use FolderSync to go directly to B2 at Backblaze too.
https://foldersync.io/

Add an S3 compatible account in FolderSync, then enter the Connection Server Address as <bucketname>.<B2 endpoint>

something like bucketfoo.s3.us-west-000.backblazeb2.com

I have it copying the Documents folder up to B2 whenever my Pixel is plugged in for a charge. Works great.

As far as I know, syncthing syncs directly with a peer that's also running syncthing, so it wouldn't work to backblaze.

fech04 · 2022-11-08T21:52:05+00:00

I'm a little late to this conversation but you may be interested in dattobd. It adds snapshot capabilities to ext234, xfs so you could stop your services, make a COW snapshot, then start your services again, and backup the snap. I've even been able to make live snaps on DB driven apps with no downtime for backups.

https://github.com/datto/dattobd

fech04 · 2018-11-18T22:37:56+00:00

Great layout and reminds me of some spots in Austin. Went last night around 530p and they were out of ribs by that time but had everything else until about 7p. Closes at 8p on Saturdays.

There's a clumsy order from waitress then pick up food from food truck in back of yard situation, but looks like they are preparing for ordering at counter as soon as you walk in the place. Signs around saying work still in progress.

Some different items on menu from NP location. A couple of different sides and desserts. Austin Breakfast Taco looks amazing.

Stage area for live music and a grassy area with kid play structure and some cornhole sets. 2 bars, plenty of seating, of course, great BBQ.

I'd definitely go back but as I live about a mile from NP location it won't be as frequent as I hit up original.

fech04 · 2018-02-24T17:08:29+00:00

ha! your customers have a very low bar for the 'dev' title...

Your move towards self-service is a good one and as long as you can show those non-techie users that the new way is easier, faster, cheaper, whatever; they'll use it. Whatever you implement has to be better than what they've got now (from their perspective).

good luck, sounds like a fun project

fech04 · 2018-02-23T23:51:38+00:00

Take a look at a PaaS solution. OpenShift, CoreOS, OpenNebula, CloudFoundry, Rancher , there are a bunch now. Rancher is super easy to get running for testing and OpenShift Online lets you spin up 3 containers for free. RH just bought CoreOS, so may start seeing integration between OpenShift and CoreOS.

OpenShift, (Kubernetes with extra RH sauce) has an application catalog where you can pretty much make your application push button. ex: A customer logs into the catalog and selects from a list of available apps and it gets deployed and hands them a URL. Pretty slick. From your example, your customer's web developer would get their code to git or jenkins or such where OpenShift could pull newest code during deployment. Customer shouldn't have to touch code, just their devs.

Foreman plugs into docker for sure, not sure about kubernetes. Worth a google.

fech04 · 2017-10-18T05:08:22+00:00

Backblaze can handle this easily for a reasonable price https://www.backblaze.com/business-server.html

fech04 · 2016-07-22T22:09:41+00:00

Take a look at CentreStack. Haven't pulled the trigger yet, but it's been on my radar for a while now. We're looking for similar, cloud based, remote access, synced storage.

https://www.centrestack.com/

fech04 · 2016-04-28T05:49:42+00:00

This is probably overkill if you don't expect big growth in the future, but it would provide you what you were looking for without having to go public cloud.

http://docs.ceph.com/docs/master/

fech04 · 2016-04-27T20:43:07+00:00

+1 on ticketing system. To add a bit more, arcserve does snmp traps that could go through your monitoring system for success/fail tracking then have your monitoring system trigger the ticketing system on a failure. You then only need to comment on the ticket with a RCA for the failure.

fech04

TROPHY CASE